SUSE-IU-2024:1755-1: Security update of suse-sles-15-sp6-chost-byos-v20241111-x86_64-gen2
sle-container-updates at lists.suse.com
sle-container-updates at lists.suse.com
Thu Nov 14 08:02:17 UTC 2024
SUSE Image Update Advisory: suse-sles-15-sp6-chost-byos-v20241111-x86_64-gen2
-----------------------------------------------------------------
Image Advisory ID : SUSE-IU-2024:1755-1
Image Tags : suse-sles-15-sp6-chost-byos-v20241111-x86_64-gen2:20241111
Image Release :
Severity : important
Type : security
References : 1012628 1183045 1188441 1204720 1210382 1210959 1214915 1215199
1216223 1216776 1219031 1220262 1220262 1220382 1220724 1221527
1221601 1221610 1221650 1221714 1222629 1223600 1223848 1224258
1224260 1224264 1224265 1224266 1224267 1224268 1224269 1224270
1224271 1224272 1224273 1224275 1224465 1225487 1225812 1225903
1226003 1226507 1226606 1226666 1226724 1226724 1226731 1226733
1226846 1226860 1227100 1227487 1227642 1227669 1227670 1227671
1227694 1227726 1227807 1227819 1227885 1227890 1227962 1228084
1228090 1228140 1228244 1228507 1228618 1228619 1228623 1228771
1228999 1229001 1229004 1229019 1229086 1229167 1229169 1229289
1229334 1229362 1229363 1229364 1229371 1229380 1229389 1229394
1229429 1229443 1229452 1229455 1229456 1229494 1229555 1229555
1229585 1229684 1229745 1229753 1229764 1229768 1229790 1229810
1229899 1229928 1230015 1230111 1230119 1230123 1230124 1230125
1230135 1230166 1230169 1230170 1230171 1230173 1230174 1230175
1230176 1230178 1230180 1230181 1230185 1230191 1230192 1230193
1230194 1230195 1230200 1230204 1230206 1230207 1230209 1230211
1230213 1230217 1230221 1230224 1230230 1230232 1230233 1230240
1230244 1230245 1230247 1230248 1230263 1230269 1230270 1230295
1230316 1230340 1230426 1230430 1230431 1230432 1230433 1230434
1230435 1230440 1230441 1230442 1230444 1230450 1230451 1230454
1230455 1230457 1230459 1230506 1230507 1230511 1230515 1230517
1230518 1230519 1230520 1230521 1230524 1230526 1230533 1230535
1230539 1230540 1230549 1230556 1230562 1230563 1230564 1230580
1230582 1230589 1230602 1230699 1230700 1230701 1230702 1230703
1230704 1230705 1230706 1230709 1230711 1230712 1230715 1230719
1230722 1230724 1230725 1230726 1230727 1230730 1230731 1230732
1230747 1230748 1230749 1230751 1230752 1230753 1230756 1230761
1230766 1230767 1230768 1230771 1230772 1230775 1230776 1230780
1230783 1230786 1230787 1230791 1230794 1230796 1230802 1230806
1230808 1230809 1230810 1230812 1230813 1230814 1230815 1230821
1230825 1230830 1230831 1230840 1230854 1230906 1230911 1230912
1230948 1230972 1231008 1231035 1231043 1231051 1231060 1231120
1231146 1231182 1231183 1231661 1231796 1231829 1231833 1232241
1232528 CVE-2023-50782 CVE-2023-50782 CVE-2023-52610 CVE-2023-52752
CVE-2023-52915 CVE-2023-52916 CVE-2024-26640 CVE-2024-26759 CVE-2024-26804
CVE-2024-36953 CVE-2024-38538 CVE-2024-38596 CVE-2024-38632 CVE-2024-40965
CVE-2024-40973 CVE-2024-40983 CVE-2024-42154 CVE-2024-42243 CVE-2024-42252
CVE-2024-42265 CVE-2024-42294 CVE-2024-42304 CVE-2024-42305 CVE-2024-42306
CVE-2024-43828 CVE-2024-43832 CVE-2024-43835 CVE-2024-43845 CVE-2024-43870
CVE-2024-43890 CVE-2024-43898 CVE-2024-43904 CVE-2024-43914 CVE-2024-44935
CVE-2024-44944 CVE-2024-44946 CVE-2024-44947 CVE-2024-44948 CVE-2024-44950
CVE-2024-44951 CVE-2024-44952 CVE-2024-44954 CVE-2024-44960 CVE-2024-44961
CVE-2024-44962 CVE-2024-44965 CVE-2024-44967 CVE-2024-44969 CVE-2024-44970
CVE-2024-44971 CVE-2024-44977 CVE-2024-44982 CVE-2024-44984 CVE-2024-44985
CVE-2024-44986 CVE-2024-44987 CVE-2024-44988 CVE-2024-44989 CVE-2024-44990
CVE-2024-44991 CVE-2024-44997 CVE-2024-44998 CVE-2024-44999 CVE-2024-45000
CVE-2024-45001 CVE-2024-45002 CVE-2024-45003 CVE-2024-45005 CVE-2024-45006
CVE-2024-45007 CVE-2024-45008 CVE-2024-45011 CVE-2024-45012 CVE-2024-45013
CVE-2024-45015 CVE-2024-45017 CVE-2024-45018 CVE-2024-45019 CVE-2024-45020
CVE-2024-45021 CVE-2024-45022 CVE-2024-45023 CVE-2024-45026 CVE-2024-45028
CVE-2024-45029 CVE-2024-45030 CVE-2024-46672 CVE-2024-46673 CVE-2024-46674
CVE-2024-46675 CVE-2024-46676 CVE-2024-46677 CVE-2024-46679 CVE-2024-46685
CVE-2024-46686 CVE-2024-46687 CVE-2024-46689 CVE-2024-46691 CVE-2024-46692
CVE-2024-46693 CVE-2024-46694 CVE-2024-46695 CVE-2024-46702 CVE-2024-46706
CVE-2024-46707 CVE-2024-46709 CVE-2024-46710 CVE-2024-46714 CVE-2024-46715
CVE-2024-46716 CVE-2024-46717 CVE-2024-46719 CVE-2024-46720 CVE-2024-46722
CVE-2024-46723 CVE-2024-46724 CVE-2024-46725 CVE-2024-46726 CVE-2024-46728
CVE-2024-46729 CVE-2024-46730 CVE-2024-46731 CVE-2024-46732 CVE-2024-46734
CVE-2024-46735 CVE-2024-46737 CVE-2024-46738 CVE-2024-46739 CVE-2024-46741
CVE-2024-46743 CVE-2024-46744 CVE-2024-46745 CVE-2024-46746 CVE-2024-46747
CVE-2024-46749 CVE-2024-46750 CVE-2024-46751 CVE-2024-46752 CVE-2024-46753
CVE-2024-46755 CVE-2024-46756 CVE-2024-46757 CVE-2024-46758 CVE-2024-46759
CVE-2024-46760 CVE-2024-46761 CVE-2024-46767 CVE-2024-46771 CVE-2024-46772
CVE-2024-46773 CVE-2024-46774 CVE-2024-46776 CVE-2024-46778 CVE-2024-46780
CVE-2024-46781 CVE-2024-46783 CVE-2024-46784 CVE-2024-46786 CVE-2024-46787
CVE-2024-46791 CVE-2024-46794 CVE-2024-46797 CVE-2024-46798 CVE-2024-46822
CVE-2024-9287 CVE-2024-9681
-----------------------------------------------------------------
The container suse-sles-15-sp6-chost-byos-v20241111-x86_64-gen2 was updated. The following patches have been included in this update:
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3561-1
Released: Wed Oct 9 10:45:11 2024
Summary: Security update for the Linux Kernel
Type: security
Severity: important
References: 1012628,1183045,1215199,1216223,1216776,1220382,1221527,1221610,1221650,1222629,1223600,1223848,1225487,1225812,1225903,1226003,1226507,1226606,1226666,1226846,1226860,1227487,1227694,1227726,1227819,1227885,1227890,1227962,1228090,1228140,1228244,1228507,1228771,1229001,1229004,1229019,1229086,1229167,1229169,1229289,1229334,1229362,1229363,1229364,1229371,1229380,1229389,1229394,1229429,1229443,1229452,1229455,1229456,1229494,1229585,1229753,1229764,1229768,1229790,1229810,1229899,1229928,1230015,1230119,1230123,1230124,1230125,1230169,1230170,1230171,1230173,1230174,1230175,1230176,1230178,1230180,1230181,1230185,1230191,1230192,1230193,1230194,1230195,1230200,1230204,1230206,1230207,1230209,1230211,1230213,1230217,1230221,1230224,1230230,1230232,1230233,1230240,1230244,1230245,1230247,1230248,1230269,1230270,1230295,1230340,1230426,1230430,1230431,1230432,1230433,1230434,1230435,1230440,1230441,1230442,1230444,1230450,1230451,1230454,1230455,1230457,1230459,1230506,1
230507,1230511,1230515,1230517,1230518,1230519,1230520,1230521,1230524,1230526,1230533,1230535,1230539,1230540,1230549,1230556,1230562,1230563,1230564,1230580,1230582,1230589,1230602,1230699,1230700,1230701,1230702,1230703,1230704,1230705,1230706,1230709,1230711,1230712,1230715,1230719,1230722,1230724,1230725,1230726,1230727,1230730,1230731,1230732,1230747,1230748,1230749,1230751,1230752,1230753,1230756,1230761,1230766,1230767,1230768,1230771,1230772,1230775,1230776,1230780,1230783,1230786,1230787,1230791,1230794,1230796,1230802,1230806,1230808,1230809,1230810,1230812,1230813,1230814,1230815,1230821,1230825,1230830,1230831,1230854,1230948,1231008,1231035,1231120,1231146,1231182,1231183,CVE-2023-52610,CVE-2023-52752,CVE-2023-52915,CVE-2023-52916,CVE-2024-26640,CVE-2024-26759,CVE-2024-26804,CVE-2024-36953,CVE-2024-38538,CVE-2024-38596,CVE-2024-38632,CVE-2024-40965,CVE-2024-40973,CVE-2024-40983,CVE-2024-42154,CVE-2024-42243,CVE-2024-42252,CVE-2024-42265,CVE-2024-42294,CVE-2024-42304,CV
E-2024-42305,CVE-2024-42306,CVE-2024-43828,CVE-2024-43832,CVE-2024-43835,CVE-2024-43845,CVE-2024-43870,CVE-2024-43890,CVE-2024-43898,CVE-2024-43904,CVE-2024-43914,CVE-2024-44935,CVE-2024-44944,CVE-2024-44946,CVE-2024-44947,CVE-2024-44948,CVE-2024-44950,CVE-2024-44951,CVE-2024-44952,CVE-2024-44954,CVE-2024-44960,CVE-2024-44961,CVE-2024-44962,CVE-2024-44965,CVE-2024-44967,CVE-2024-44969,CVE-2024-44970,CVE-2024-44971,CVE-2024-44977,CVE-2024-44982,CVE-2024-44984,CVE-2024-44985,CVE-2024-44986,CVE-2024-44987,CVE-2024-44988,CVE-2024-44989,CVE-2024-44990,CVE-2024-44991,CVE-2024-44997,CVE-2024-44998,CVE-2024-44999,CVE-2024-45000,CVE-2024-45001,CVE-2024-45002,CVE-2024-45003,CVE-2024-45005,CVE-2024-45006,CVE-2024-45007,CVE-2024-45008,CVE-2024-45011,CVE-2024-45012,CVE-2024-45013,CVE-2024-45015,CVE-2024-45017,CVE-2024-45018,CVE-2024-45019,CVE-2024-45020,CVE-2024-45021,CVE-2024-45022,CVE-2024-45023,CVE-2024-45026,CVE-2024-45028,CVE-2024-45029,CVE-2024-45030,CVE-2024-46672,CVE-2024-46673,CVE-2024-
46674,CVE-2024-46675,CVE-2024-46676,CVE-2024-46677,CVE-2024-46679,CVE-2024-46685,CVE-2024-46686,CVE-2024-46687,CVE-2024-46689,CVE-2024-46691,CVE-2024-46692,CVE-2024-46693,CVE-2024-46694,CVE-2024-46695,CVE-2024-46702,CVE-2024-46706,CVE-2024-46707,CVE-2024-46709,CVE-2024-46710,CVE-2024-46714,CVE-2024-46715,CVE-2024-46716,CVE-2024-46717,CVE-2024-46719,CVE-2024-46720,CVE-2024-46722,CVE-2024-46723,CVE-2024-46724,CVE-2024-46725,CVE-2024-46726,CVE-2024-46728,CVE-2024-46729,CVE-2024-46730,CVE-2024-46731,CVE-2024-46732,CVE-2024-46734,CVE-2024-46735,CVE-2024-46737,CVE-2024-46738,CVE-2024-46739,CVE-2024-46741,CVE-2024-46743,CVE-2024-46744,CVE-2024-46745,CVE-2024-46746,CVE-2024-46747,CVE-2024-46749,CVE-2024-46750,CVE-2024-46751,CVE-2024-46752,CVE-2024-46753,CVE-2024-46755,CVE-2024-46756,CVE-2024-46757,CVE-2024-46758,CVE-2024-46759,CVE-2024-46760,CVE-2024-46761,CVE-2024-46767,CVE-2024-46771,CVE-2024-46772,CVE-2024-46773,CVE-2024-46774,CVE-2024-46776,CVE-2024-46778,CVE-2024-46780,CVE-2024-46781,C
VE-2024-46783,CVE-2024-46784,CVE-2024-46786,CVE-2024-46787,CVE-2024-46791,CVE-2024-46794,CVE-2024-46797,CVE-2024-46798,CVE-2024-46822
The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2023-52610: net/sched: act_ct: fix skb leak and crash on ooo frags (bsc#1221610).
- CVE-2023-52752: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() (bsc#1225487).
- CVE-2023-52916: media: aspeed: Fix memory overwrite if timing is 1600x900 (bsc#1230269).
- CVE-2024-26640: tcp: add sanity checks to rx zerocopy (bsc#1221650).
- CVE-2024-26759: mm/swap: fix race when skipping swapcache (bsc#1230340).
- CVE-2024-26804: net: ip_tunnel: prevent perpetual headroom growth (bsc#1222629).
- CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes (bsc#1226606).
- CVE-2024-38596: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg (bsc#1226846).
- CVE-2024-40965: i2c: lpi2c: Avoid calling clk_get_rate during transfer (bsc#1227885).
- CVE-2024-40973: media: mtk-vcodec: potential null pointer deference in SCP (bsc#1227890).
- CVE-2024-40983: tipc: force a dst refcount before doing decryption (bsc#1227819).
- CVE-2024-42154: tcp_metrics: validate source addr length (bsc#1228507).
- CVE-2024-42243: mm/filemap: make MAX_PAGECACHE_ORDER acceptable to xarray (bsc#1229001).
- CVE-2024-42252: closures: Change BUG_ON() to WARN_ON() (bsc#1229004).
- CVE-2024-42265: protect the fetch of ->fd[fd] in do_dup2() from mispredictions (bsc#1229334).
- CVE-2024-42294: block: fix deadlock between sd_remove & sd_release (bsc#1229371).
- CVE-2024-42304: ext4: make sure the first directory block is not a hole (bsc#1229364).
- CVE-2024-42305: ext4: check dot and dotdot of dx_root before making dir indexed (bsc#1229363).
- CVE-2024-42306: udf: Avoid using corrupted block bitmap buffer (bsc#1229362).
- CVE-2024-43828: ext4: fix infinite loop when replaying fast_commit (bsc#1229394).
- CVE-2024-43832: s390/uv: Do not call folio_wait_writeback() without a folio reference (bsc#1229380).
- CVE-2024-43845: udf: Fix bogus checksum computation in udf_rename() (bsc#1229389).
- CVE-2024-43890: tracing: Fix overflow in get_free_elt() (bsc#1229764).
- CVE-2024-43898: ext4: sanity check for NULL pointer after ext4_force_shutdown (bsc#1229753).
- CVE-2024-43914: md/raid5: avoid BUG_ON() while continue reshape after reassembling (bsc#1229790).
- CVE-2024-44935: sctp: Fix null-ptr-deref in reuseport_add_sock() (bsc#1229810).
- CVE-2024-44944: netfilter: ctnetlink: use helper function to calculate expect ID (bsc#1229899).
- CVE-2024-44946: kcm: Serialise kcm_sendmsg() for the same socket (bsc#1230015).
- CVE-2024-44950: serial: sc16is7xx: fix invalid FIFO access with special register set (bsc#1230180).
- CVE-2024-44951: serial: sc16is7xx: fix TX fifo corruption (bsc#1230181).
- CVE-2024-44970: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink (bsc#1230209).
- CVE-2024-44971: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() (bsc#1230211).
- CVE-2024-44984: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT (bsc#1230240).
- CVE-2024-44985: ipv6: prevent possible UAF in ip6_xmit() (bsc#1230206).
- CVE-2024-44987: ipv6: prevent UAF in ip6_send_skb() (bsc#1230185).
- CVE-2024-44988: net: dsa: mv88e6xxx: Fix out-of-bound access (bsc#1230192).
- CVE-2024-44989: bonding: fix xfrm real_dev null pointer dereference (bsc#1230193).
- CVE-2024-44990: bonding: fix null pointer deref in bond_ipsec_offload_ok (bsc#1230194).
- CVE-2024-44991: tcp: prevent concurrent execution of tcp_sk_exit_batch (bsc#1230195).
- CVE-2024-44998: atm: idt77252: prevent use after free in dequeue_rx() (bsc#1230171).
- CVE-2024-44999: gtp: pull network headers in gtp_dev_xmit() (bsc#1230233).
- CVE-2024-45002: rtla/osnoise: Prevent NULL dereference in error handling (bsc#1230169).
- CVE-2024-45003: Don't evict inode under the inode lru traversing context (bsc#1230245).
- CVE-2024-45013: nvme: move stopping keep-alive into nvme_uninit_ctrl() (bsc#1230442).
- CVE-2024-45017: net/mlx5: Fix IPsec RoCE MPV trace call (bsc#1230430).
- CVE-2024-45018: netfilter: flowtable: initialise extack before use (bsc#1230431).
- CVE-2024-45019: net/mlx5e: Take state lock during tx timeout reporter (bsc#1230432).
- CVE-2024-45021: memcg_write_event_control(): fix a user-triggerable oops (bsc#1230434).
- CVE-2024-45022: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 (bsc#1230435).
- CVE-2024-45023: md/raid1: Fix data corruption for degraded array with slow disk (bsc#1230455).
- CVE-2024-45029: i2c: tegra: Do not mark ACPI devices as irq safe (bsc#1230451).
- CVE-2024-45030: igb: cope with large MAX_SKB_FRAGS (bsc#1230457).
- CVE-2024-46673: scsi: aacraid: Fix double-free on probe failure (bsc#1230506).
- CVE-2024-46677: gtp: fix a potential NULL pointer dereference (bsc#1230549).
- CVE-2024-46679: ethtool: check device is present when getting link settings (bsc#1230556).
- CVE-2024-46686: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() (bsc#1230517).
- CVE-2024-46687: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() (bsc#1230518).
- CVE-2024-46691: usb: typec: ucsi: Move unregister out of atomic section (bsc#1230526).
- CVE-2024-46692: firmware: qcom: scm: Mark get_wq_ctx() as atomic call (bsc#1230520).
- CVE-2024-46693: kABI workaround for soc-qcom pmic_glink changes (bsc#1230521).
- CVE-2024-46710: drm/vmwgfx: Prevent unmapping active read buffers (bsc#1230540).
- CVE-2024-46717: net/mlx5e: SHAMPO, Fix incorrect page release (bsc#1230719).
- CVE-2024-46729: drm/amd/display: Fix incorrect size calculation for loop (bsc#1230704).
- CVE-2024-46735: ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() (bsc#1230727).
- CVE-2024-46743: of/irq: Prevent device address out-of-bounds read in interrupt map walk (bsc#1230756).
- CVE-2024-46751: btrfs: do not BUG_ON() when 0 reference count at btrfs_lookup_extent_info() (bsc#1230786).
- CVE-2024-46752: btrfs: reduce nesting for extent processing at btrfs_lookup_extent_info() (bsc#1230794).
- CVE-2024-46753: btrfs: handle errors from btrfs_dec_ref() properly (bsc#1230796).
- CVE-2024-46772: drm/amd/display: Check denominator crb_pipes before used (bsc#1230772).
- CVE-2024-46783: tcp_bpf: fix return value of tcp_bpf_sendmsg() (bsc#1230810).
- CVE-2024-46787: userfaultfd: fix checks for huge PMDs (bsc#1230815).
- CVE-2024-46794: x86/tdx: Fix data leak in mmio_read() (bsc#1230825).
- CVE-2024-46822: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry (bsc#1231120).
The following non-security bugs were fixed:
- ABI: testing: fix admv8818 attr description (git-fixes).
- ACPI: CPPC: Add helper to get the highest performance value (stable-fixes).
- ACPI: CPPC: Fix MASK_VAL() usage (git-fixes).
- ACPI: PMIC: Remove unneeded check in tps68470_pmic_opregion_probe() (git-fixes).
- ACPI: processor: Fix memory leaks in error paths of processor_add() (stable-fixes).
- ACPI: processor: Return an error if acpi_processor_get_info() fails in processor_add() (stable-fixes).
- ACPI: sysfs: validate return type of _STR method (git-fixes).
- ACPICA: Implement ACPI_WARNING_ONCE and ACPI_ERROR_ONCE (stable-fixes).
- ACPICA: executer/exsystem: Do not nag user about every Stall() violating the spec (git-fixes).
- ALSA: control: Apply sanity check of input values for user elements (stable-fixes).
- ALSA: hda/conexant: Add pincfg quirk to enable top speakers on Sirius devices (stable-fixes).
- ALSA: hda/realtek - Fix inactive headset mic jack for ASUS Vivobook 15 X1504VAP (stable-fixes).
- ALSA: hda/realtek: Enable Mute Led for HP Victus 15-fb1xxx (stable-fixes).
- ALSA: hda/realtek: Support mute LED on HP Laptop 14-dq2xxx (stable-fixes).
- ALSA: hda/realtek: add patch for internal mic in Lenovo V145 (stable-fixes).
- ALSA: hda/realtek: extend quirks for Clevo V5[46]0 (stable-fixes).
- ALSA: hda: Add input value sanity checks to HDMI channel map controls (stable-fixes).
- ALSA: hda: add HDMI codec ID for Intel PTL (stable-fixes).
- ALSA: hda: cs35l41: fix module autoloading (git-fixes).
- ARM: 9406/1: Fix callchain_trace() return value (git-fixes).
- ASoC: Intel: soc-acpi-cht: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- ASoC: amd: yc: Add a quirk for MSI Bravo 17 (D7VEK) (stable-fixes).
- ASoC: codecs: avoid possible garbage value in peb2466_reg_read() (git-fixes).
- ASoC: cs42l42: Convert comma to semicolon (git-fixes).
- ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object (git-fixes).
- ASoC: intel: fix module autoloading (stable-fixes).
- ASoC: meson: Remove unused declartion in header file (git-fixes).
- ASoC: meson: axg-card: fix 'use-after-free' (git-fixes).
- ASoC: rt5682: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: rt5682s: Return devm_of_clk_add_hw_provider to transfer the error (git-fixes).
- ASoC: soc-ac97: Fix the incorrect description (git-fixes).
- ASoC: sunxi: sun4i-i2s: fix LRCLK polarity in i2s mode (git-fixes).
- ASoC: tas2781-i2c: Get the right GPIO line (git-fixes).
- ASoC: tda7419: fix module autoloading (stable-fixes).
- ASoC: tegra: Fix CBB error during probe() (git-fixes).
- ASoC: topology: Properly initialize soc_enum values (stable-fixes).
- ASoc: SOF: topology: Clear SOF link platform name upon unload (git-fixes).
- ASoc: TAS2781: replace beXX_to_cpup with get_unaligned_beXX for potentially broken alignment (stable-fixes).
- Bluetooth: MGMT: Ignore keys being loaded with invalid type (git-fixes).
- Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuart_flush() (stable-fixes).
- Bluetooth: btusb: Fix not handling ZPL/short-transfer (git-fixes).
- Bluetooth: hci_core: Fix sending MGMT_EV_CONNECT_FAILED (git-fixes).
- Bluetooth: hci_event: Use HCI error defines instead of magic values (stable-fixes).
- Bluetooth: hci_sync: Add helper functions to manipulate cmd_sync queue (stable-fixes).
- Bluetooth: hci_sync: Ignore errors from HCI_OP_REMOTE_NAME_REQ_CANCEL (git-fixes).
- Detect memory allocation failure in annotated_source__alloc_histograms (bsc#1227962).
- Documentation: ioctl: document 0x07 ioctl code (git-fixes).
- Drivers: hv: vmbus: Fix rescind handling in uio_hv_generic (git-fixes).
- Drivers: hv: vmbus: Fix the misplaced function description (git-fixes).
- HID: amd_sfh: free driver_data after destroying hid device (stable-fixes).
- HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup (stable-fixes).
- HID: multitouch: Add support for GT7868Q (stable-fixes).
- HID: wacom: Do not warn about dropped packets for first packet (git-fixes).
- HID: wacom: Support sequence numbers smaller than 16-bit (git-fixes).
- IB/core: Fix ib_cache_setup_one error flow cleanup (git-fixes)
- Input: adp5588-keys - fix check on return code (git-fixes).
- Input: ads7846 - ratelimit the spi_sync error message (stable-fixes).
- Input: ili210x - use kvmalloc() to allocate buffer for firmware update (stable-fixes).
- Input: ilitek_ts_i2c - avoid wrong input subsystem sync (git-fixes).
- Input: ps2-gpio - use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- Input: synaptics - enable SMBus for HP Elitebook 840 G2 (stable-fixes).
- Input: tsc2004/5 - do not hard code interrupt trigger (git-fixes).
- Input: tsc2004/5 - fix reset handling on probe (git-fixes).
- Input: tsc2004/5 - use device core to create driver-specific device attributes (git-fixes).
- Input: uinput - reject requests with unreasonable number of slots (stable-fixes).
- KEYS: prevent NULL pointer dereference in find_asymmetric_key() (git-fixes).
- KVM: SVM: Do not advertise Bus Lock Detect to guest if SVM support is missing (git-fixes).
- KVM: SVM: fix emulation of msr reads/writes of MSR_FS_BASE and MSR_GS_BASE (git-fixes).
- KVM: arm64: Block unsafe FF-A calls from the host (git-fixes).
- KVM: arm64: Disallow copying MTE to guest memory while KVM is dirty logging (git-fixes).
- KVM: arm64: Do not pass a TLBI level hint when zapping table entries (git-fixes).
- KVM: arm64: Do not re-initialize the KVM lock (git-fixes).
- KVM: arm64: Invalidate EL1&0 TLB entries for all VMIDs in nvhe hyp init (git-fixes).
- KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 (git-fixes).
- KVM: arm64: Release pfn, i.e. put page, if copying MTE tags hits ZONE_DEVICE (git-fixes).
- KVM: arm64: nvhe: Ignore SVE hint in SMCCC function ID (git-fixes).
- KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() (git-fixes).
- KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS (git-fixes).
- Move fixes into sorted section (bsc#1230119)
- NFS: never reuse a NFSv4.0 lock-owner (bsc#1227726).
- NFSD: Fix frame size warning in svc_export_parse() (git-fixes).
- NFSD: Rewrite synopsis of nfsd_percpu_counters_init() (git-fixes).
- NFSv4: Add missing rescheduling points in nfs_client_return_marked_delegations (git-fixes).
- PCI: Add missing bridge lock to pci_bus_lock() (stable-fixes).
- PCI: Wait for Link before restoring Downstream Buses (git-fixes).
- PCI: al: Check IORESOURCE_BUS existence during probe (stable-fixes).
- PCI: dra7xx: Fix error handling when IRQ request fails in probe (git-fixes).
- PCI: dra7xx: Fix threaded IRQ request for 'dra7xx-pcie-main' IRQ (git-fixes).
- PCI: dwc: Expose dw_pcie_ep_exit() to module (git-fixes).
- PCI: imx6: Fix missing call to phy_power_off() in error handling (git-fixes).
- PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) (stable-fixes).
- PCI: keystone: Fix if-statement expression in ks_pcie_quirk() (git-fixes).
- PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() (git-fixes).
- PCI: qcom-ep: Enable controller resources like PHY only after refclk is available (git-fixes).
- PCI: xilinx-nwl: Clean up clock on probe failure/removal (git-fixes).
- PCI: xilinx-nwl: Fix off-by-one in INTx IRQ handler (git-fixes).
- PKCS#7: Check codeSigning EKU of certificates in PKCS#7 (bsc#1226666).
- RDMA/core: Remove unused declaration rdma_resolve_ip_route() (git-fixes)
- RDMA/cxgb4: Added NULL check for lookup_atid (git-fixes)
- RDMA/efa: Properly handle unexpected AQ completions (git-fixes)
- RDMA/erdma: Return QP state in erdma_query_qp (git-fixes)
- RDMA/hns: Do not modify rq next block addr in HIP09 QPC (git-fixes)
- RDMA/hns: Fix 1bit-ECC recovery address in non-4K OS (git-fixes)
- RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 (git-fixes)
- RDMA/hns: Fix VF triggering PF reset in abnormal interrupt handler (git-fixes)
- RDMA/hns: Fix ah error counter in sw stat not increasing (git-fixes)
- RDMA/hns: Fix restricted __le16 degrades to integer issue (git-fixes)
- RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled (git-fixes)
- RDMA/hns: Fix the overflow risk of hem_list_calc_ba_range() (git-fixes)
- RDMA/hns: Optimize hem allocation performance (git-fixes)
- RDMA/irdma: fix error message in irdma_modify_qp_roce() (git-fixes)
- RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency (git-fixes)
- RDMA/mlx5: Drop redundant work canceling from clean_keys() (git-fixes)
- RDMA/mlx5: Fix MR cache temp entries cleanup (git-fixes)
- RDMA/mlx5: Fix counter update on MR cache mkey creation (git-fixes)
- RDMA/mlx5: Limit usage of over-sized mkeys from the MR cache (git-fixes)
- RDMA/mlx5: Obtain upper net device only when needed (git-fixes)
- RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds (git-fixes)
- RDMA/rtrs: Reset hb_missed_cnt after receiving other traffic from peer (git-fixes)
- Restore dropped fields for bluetooth MGMT/SMP structs (git-fixes).
- Revert 'Bluetooth: MGMT/SMP: Fix address type when using SMP over BREDR/LE' (git-fixes).
- Revert 'PCI: Extend ACS configurability (bsc#1228090).' (bsc#1229019)
- Revert 'drm/amdgpu: align pp_power_profile_mode with kernel docs' (stable-fixes).
- Revert 'media: tuners: fix error return code of hybrid_tuner_request_state()' (git-fixes).
- Revert 'mm, kmsan: fix infinite recursion due to RCU critical section'
- Revert 'mm/sparsemem: fix race in accessing memory_section->usage'
- Revert 'mm: prevent derefencing NULL ptr in pfn_section_valid()'
- Squashfs: sanity check symbolic link size (git-fixes).
- USB: class: CDC-ACM: fix race between get_serial and set_serial (git-fixes).
- USB: serial: kobil_sct: restore initial terminal settings (git-fixes).
- USB: serial: option: add MeiG Smart SRM825L (git-fixes).
- USB: serial: pl2303: add device id for Macrosilicon MS3020 (stable-fixes).
- USB: usbtmc: prevent kernel-usb-infoleak (git-fixes).
- VMCI: Fix use-after-free when removing resource in vmci_resource_remove() (git-fixes).
- afs: Do not cross .backup mountpoint from backup volume (git-fixes).
- afs: Revert 'afs: Hide silly-rename files from userspace' (git-fixes).
- arm64/mm: Modify range-based tlbi to decrement scale (bsc#1229585)
- arm64/mm: Update tlb invalidation routines for FEAT_LPA2 (bsc#1229585)
- arm64: acpi: Move get_cpu_for_acpi_id() to a header (git-fixes).
- arm64: dts: allwinner: h616: Add r_i2c pinctrl nodes (git-fixes).
- arm64: dts: exynos: exynos7885-jackpotlte: Correct RAM amount to 4GB (git-fixes).
- arm64: dts: imx8-ss-dma: Fix adc0 closing brace location (git-fixes).
- arm64: dts: rockchip: Correct the Pinebook Pro battery design capacity (git-fixes).
- arm64: dts: rockchip: Correct vendor prefix for Hardkernel ODROID-M1 (git-fixes).
- arm64: dts: rockchip: Raise Pinebook Pro's panel backlight PWM frequency (git-fixes).
- arm64: dts: rockchip: fix PMIC interrupt pin in pinctrl for ROCK Pi E (git-fixes).
- arm64: dts: rockchip: fix eMMC/SPI corruption when audio has been used on RK3399 Puma (git-fixes).
- arm64: dts: rockchip: override BIOS_DISABLE signal via GPIO hog on RK3399 Puma (git-fixes).
- arm64: signal: Fix some under-bracketed UAPI macros (git-fixes).
- arm64: tlb: Allow range operation for MAX_TLBI_RANGE_PAGES (bsc#1229585)
- arm64: tlb: Fix TLBI RANGE operand (bsc#1229585)
- arm64: tlb: Improve __TLBI_VADDR_RANGE() (bsc#1229585)
- ata: libata-scsi: Fix ata_msense_control() CDL page reporting (git-fixes).
- ata: libata: Clear DID_TIME_OUT for ATA PT commands with sense data (git-fixes).
- ata: libata: Fix memory leak for error path in ata_host_alloc() (git-fixes).
- ata: pata_macio: Use WARN instead of BUG (stable-fixes).
- blk-mq: add helper for checking if one CPU is mapped to specified hctx (bsc#1223600).
- blk-mq: do not schedule block kworker on isolated CPUs (bsc#1223600).
- bpf, events: Use prog to emit ksymbol event for main program (git-fixes).
- bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() (git-fixes).
- btrfs: fix race between direct IO write and fsync when using same fd (git-fixes).
- btrfs: send: allow cloning non-aligned extent if it ends at i_size (bsc#1230854).
- bus: integrator-lm: fix OF node leak in probe() (git-fixes).
- cachefiles: Fix non-taking of sb_writers around set/removexattr (bsc#1231008).
- cachefiles: fix dentry leak in cachefiles_open_file() (bsc#1231183).
- can: bcm: Clear bo->bcm_proc_read after remove_proc_entry() (git-fixes).
- can: bcm: Remove proc entry when dev is unregistered (git-fixes).
- can: j1939: use correct function name in comment (git-fixes).
- can: kvaser_pciefd: Skip redundant NULL pointer check in ISR (stable-fixes).
- can: m_can: Release irq on error in m_can_open (git-fixes).
- can: m_can: enable NAPI before enabling interrupts (git-fixes).
- can: m_can: m_can_close(): stop clocks after device has been shut down (git-fixes).
- can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open (git-fixes).
- can: mcp251xfd: clarify the meaning of timestamp (stable-fixes).
- can: mcp251xfd: fix ring configuration when switching from CAN-CC to CAN-FD mode (git-fixes).
- can: mcp251xfd: mcp251xfd_handle_rxif_ring_uinc(): factor out in separate function (stable-fixes).
- can: mcp251xfd: mcp251xfd_ring_init(): check TX-coalescing configuration (stable-fixes).
- can: mcp251xfd: move mcp251xfd_timestamp_start()/stop() into mcp251xfd_chip_start/stop() (stable-fixes).
- can: mcp251xfd: properly indent labels (stable-fixes).
- can: mcp251xfd: rx: add workaround for erratum DS80000789E 6 of mcp2518fd (stable-fixes).
- can: mcp251xfd: rx: prepare to workaround broken RX FIFO head index erratum (stable-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (git-fixes).
- cdc-acm: Add DISABLE_ECHO quirk for GE HealthCare UI Controller (stable-fixes).
- ceph: remove the incorrect Fw reference check when dirtying pages (bsc#1231182).
- clk: Add a devm variant of clk_rate_exclusive_get() (bsc#1227885).
- clk: Provide !COMMON_CLK dummy for devm_clk_rate_exclusive_get() (bsc#1227885).
- clk: qcom: clk-alpha-pll: Fix the pll post div mask (git-fixes).
- clk: qcom: clk-alpha-pll: Fix the trion pll postdiv set rate API (git-fixes).
- clk: qcom: clk-alpha-pll: Fix zonda set_rate failure when PLL is disabled (git-fixes).
- clk: qcom: gcc-sc8280xp: do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: gcc-sm8550: Do not park the USB RCG at registration time (git-fixes).
- clk: qcom: gcc-sm8550: Do not use parking clk_ops for QUPs (git-fixes).
- clk: qcom: ipq9574: Update the alpha PLL type for GPLLs (git-fixes).
- clk: ti: dra7-atl: Fix leak of of_nodes (git-fixes).
- clocksource/drivers/imx-tpm: Fix next event not taking effect sometime (git-fixes).
- clocksource/drivers/imx-tpm: Fix return -ETIME when delta exceeds INT_MAX (git-fixes).
- clocksource/drivers/qcom: Add missing iounmap() on errors in msm_dt_timer_init() (git-fixes).
- cpufreq: amd-pstate: Enable amd-pstate preferred core support (stable-fixes).
- cpufreq: amd-pstate: fix the highest frequency issue which limits performance (git-fixes).
- cpufreq: scmi: Avoid overflow of target_freq in fast switch (stable-fixes).
- cpufreq: ti-cpufreq: Introduce quirks to handle syscon fails appropriately (git-fixes).
- crypto: ccp - Properly unregister /dev/sev on sev PLATFORM_STATUS failure (git-fixes).
- crypto: ccp - do not request interrupt on cmd completion when irqs disabled (git-fixes).
- crypto: iaa - Fix potential use after free bug (git-fixes).
- crypto: qat - fix unintentional re-enabling of error interrupts (stable-fixes).
- crypto: xor - fix template benchmarking (git-fixes).
- cxl/core: Fix incorrect vendor debug UUID define (git-fixes).
- cxl/pci: Fix to record only non-zero ranges (git-fixes).
- devres: Initialize an uninitialized struct member (stable-fixes).
- dma-buf: heaps: Fix off-by-one in CMA heap fault handler (git-fixes).
- dma-debug: avoid deadlock between dma debug vs printk and netconsole (stable-fixes).
- dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor (stable-fixes).
- dmaengine: altera-msgdma: use irq variant of spin_lock/unlock while invoking callbacks (stable-fixes).
- driver core: Fix a potential null-ptr-deref in module_add_driver() (git-fixes).
- driver core: Fix error handling in driver API device_rename() (git-fixes).
- driver: iio: add missing checks on iio_info's callback access (stable-fixes).
- drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error (git-fixes).
- drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error (git-fixes).
- drivers:drm:exynos_drm_gsc:Fix wrong assignment in gsc_bind() (git-fixes).
- drm/amd/amdgpu: Check tbo resource pointer (stable-fixes).
- drm/amd/amdgpu: Properly tune the size of struct (git-fixes).
- drm/amd/display: Add array index check for hdcp ddc access (stable-fixes).
- drm/amd/display: Add null check for set_output_gamma in dcn30_set_output_transfer_func (git-fixes).
- drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing (stable-fixes).
- drm/amd/display: Assign linear_pitch_alignment even for VM (stable-fixes).
- drm/amd/display: Avoid overflow from uint32_t to uint8_t (stable-fixes).
- drm/amd/display: Avoid race between dcn10_set_drr() and dc_state_destruct() (git-fixes).
- drm/amd/display: Check BIOS images before it is used (stable-fixes).
- drm/amd/display: Check HDCP returned status (stable-fixes).
- drm/amd/display: Check UnboundedRequestEnabled's value (stable-fixes).
- drm/amd/display: Check denominator pbn_div before used (stable-fixes).
- drm/amd/display: Check gpio_id before used as array index (stable-fixes).
- drm/amd/display: Check index for aux_rd_interval before using (stable-fixes).
- drm/amd/display: Check msg_id before processing transcation (stable-fixes).
- drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[] (stable-fixes).
- drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX (stable-fixes).
- drm/amd/display: Defer handling mst up request in resume (stable-fixes).
- drm/amd/display: Disable error correction if it's not supported (stable-fixes).
- drm/amd/display: Do not use fsleep for PSR exit waits on dmub replay (stable-fixes).
- drm/amd/display: Ensure array index tg_inst won't be -1 (stable-fixes).
- drm/amd/display: Ensure index calculation will not overflow (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within dal_gpio_service_create (stable-fixes).
- drm/amd/display: Fix Coverity INTEGER_OVERFLOW within decide_fallback_link_setting_max_bw_policy (stable-fixes).
- drm/amd/display: Fix Coverity INTERGER_OVERFLOW within construct_integrated_info (stable-fixes).
- drm/amd/display: Fix FEC_READY write on DP LT (stable-fixes).
- drm/amd/display: Fix index may exceed array range within fpu_update_bw_bounding_box (stable-fixes).
- drm/amd/display: Fix pipe addition logic in calc_blocks_to_ungate DCN35 (stable-fixes).
- drm/amd/display: Handle the case which quad_part is equal 0 (stable-fixes).
- drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection (stable-fixes).
- drm/amd/display: Replace dm_execute_dmub_cmd with dc_wake_and_execute_dmub_cmd (git-fixes).
- drm/amd/display: Run DC_LOG_DC after checking link->link_enc (stable-fixes).
- drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration (stable-fixes).
- drm/amd/display: Skip wbscl_set_scaler_filter if filter is null (stable-fixes).
- drm/amd/display: Solve mst monitors blank out problem after resume (git-fixes).
- drm/amd/display: Spinlock before reading event (stable-fixes).
- drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6 (stable-fixes).
- drm/amd/display: Wake DMCUB before sending a command for replay feature (stable-fixes).
- drm/amd/display: added NULL check at start of dc_validate_stream (stable-fixes).
- drm/amd/display: handle nulled pipe context in DCE110's set_drr() (git-fixes).
- drm/amd/display: use preferred link settings for dp signal only (stable-fixes).
- drm/amd/pm: Fix negative array index read (stable-fixes).
- drm/amd/pm: check negtive return for table entries (stable-fixes).
- drm/amd/pm: check specific index for aldebaran (stable-fixes).
- drm/amd/pm: check specific index for smu13 (stable-fixes).
- drm/amd/pm: fix the Out-of-bounds read warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning (stable-fixes).
- drm/amd/pm: fix uninitialized variable warning for smu8_hwmgr (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vangogh_ppt (stable-fixes).
- drm/amd/pm: fix uninitialized variable warnings for vega10_hwmgr (stable-fixes).
- drm/amd/pm: fix warning using uninitialized value of max_vid_step (stable-fixes).
- drm/amd: Add gfx12 swizzle mode defs (stable-fixes).
- drm/amdgpu/atomfirmware: Silence UBSAN warning (stable-fixes).
- drm/amdgpu/display: handle gfx12 in amdgpu_dm_plane_format_mod_supported (stable-fixes).
- drm/amdgpu/pm: Check input value for CUSTOM profile mode setting on legacy SOCs (stable-fixes).
- drm/amdgpu/pm: Check the return value of smum_send_msg_to_smc (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable agc_btc_response (stable-fixes).
- drm/amdgpu/pm: Fix uninitialized variable warning for smu10 (stable-fixes).
- drm/amdgpu/swsmu: always force a state reprogram on init (stable-fixes).
- drm/amdgpu: Fix get each xcp macro (git-fixes).
- drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number (stable-fixes).
- drm/amdgpu: Fix out-of-bounds write warning (stable-fixes).
- drm/amdgpu: Fix smatch static checker warning (stable-fixes).
- drm/amdgpu: Fix the uninitialized variable warning (stable-fixes).
- drm/amdgpu: Fix the warning division or modulo by zero (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_afmt_acr (stable-fixes).
- drm/amdgpu: Fix uninitialized variable warning in amdgpu_info_ioctl (stable-fixes).
- drm/amdgpu: Handle sg size limit for contiguous allocation (stable-fixes).
- drm/amdgpu: Set no_hw_access when VF request full GPU fails (stable-fixes).
- drm/amdgpu: add lock in amdgpu_gart_invalidate_tlb (stable-fixes).
- drm/amdgpu: add lock in kfd_process_dequeue_from_device (stable-fixes).
- drm/amdgpu: add missing error handling in function amdgpu_gmc_flush_gpu_tlb_pasid (stable-fixes).
- drm/amdgpu: add skip_hw_access checks for sriov (stable-fixes).
- drm/amdgpu: align pp_power_profile_mode with kernel docs (stable-fixes).
- drm/amdgpu: avoid reading vf2pf info size from FB (stable-fixes).
- drm/amdgpu: check for LINEAR_ALIGNED correctly in check_tiling_flags_gfx6 (stable-fixes).
- drm/amdgpu: clear RB_OVERFLOW bit when enabling interrupts (stable-fixes).
- drm/amdgpu: fix a possible null pointer dereference (git-fixes).
- drm/amdgpu: fix contiguous handling for IB parsing v2 (git-fixes).
- drm/amdgpu: fix dereference after null check (stable-fixes).
- drm/amdgpu: fix mc_data out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix overflowed array index read warning (stable-fixes).
- drm/amdgpu: fix overflowed constant warning in mmhub_set_clockgating() (stable-fixes).
- drm/amdgpu: fix the waring dereferencing hive (stable-fixes).
- drm/amdgpu: fix ucode out-of-bounds read warning (stable-fixes).
- drm/amdgpu: fix uninitialized scalar variable warning (stable-fixes).
- drm/amdgpu: handle gfx12 in amdgpu_display_verify_sizes (stable-fixes).
- drm/amdgpu: properly handle vbios fake edid sizing (git-fixes).
- drm/amdgpu: reject gang submit on reserved VMIDs (stable-fixes).
- drm/amdgpu: the warning dereferencing obj for nbio_v7_4 (stable-fixes).
- drm/amdgpu: update type of buf size to u32 for eeprom functions (stable-fixes).
- drm/amdgu: fix Unintentional integer overflow for mall size (stable-fixes).
- drm/amdkfd: Check debug trap enable before write dbg_ev_file (stable-fixes).
- drm/amdkfd: Reconcile the definition and use of oem_id in struct kfd_topology_device (stable-fixes).
- drm/bridge: lontium-lt8912b: Validate mode in drm_bridge_funcs::mode_valid() (git-fixes).
- drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ (stable-fixes).
- drm/drm-bridge: Drop conditionals around of_node pointers (stable-fixes).
- drm/fb-helper: Do not schedule_work() to flush frame buffer during panic() (stable-fixes).
- drm/gpuvm: fix missing dependency to DRM_EXEC (git-fixes).
- drm/i915/fence: Mark debug_fence_free() with __maybe_unused (git-fixes).
- drm/i915/fence: Mark debug_fence_init_onstack() with __maybe_unused (git-fixes).
- drm/i915/guc: prevent a possible int overflow in wq offsets (git-fixes).
- drm/i915: Do not attempt to load the GSC multiple times (git-fixes).
- drm/kfd: Correct pinned buffer handling at kfd restore and validate process (stable-fixes).
- drm/mediatek: Set sensible cursor width/height values to fix crash (stable-fixes).
- drm/mediatek: ovl_adaptor: Add missing of_node_put() (git-fixes).
- drm/meson: plane: Add error handling (stable-fixes).
- drm/msm/a5xx: disable preemption in submits by default (git-fixes).
- drm/msm/a5xx: fix races in preemption evaluation stage (git-fixes).
- drm/msm/a5xx: properly clear preemption records on resume (git-fixes).
- drm/msm/a5xx: workaround early ring-buffer emptiness check (git-fixes).
- drm/msm/adreno: Fix error return if missing firmware-name (stable-fixes).
- drm/msm/dsi: correct programming sequence for SM8350 / SM8450 (git-fixes).
- drm/msm: Fix incorrect file name output in adreno_request_fw() (git-fixes).
- drm/msm: fix %s null argument error (git-fixes).
- drm/nouveau/fb: restore init() for ramgp102 (git-fixes).
- drm/radeon/evergreen_cs: fix int overflow errors in cs track offsets (git-fixes).
- drm/radeon: fix null pointer dereference in radeon_add_common_modes (git-fixes).
- drm/radeon: properly handle vbios fake edid sizing (git-fixes).
- drm/rockchip: dw_hdmi: Fix reading EDID when using a forced mode (git-fixes).
- drm/rockchip: vop: Allow 4096px width scaling (git-fixes).
- drm/rockchip: vop: clear DMA stop bit on RK3066 (git-fixes).
- drm/rockchip: vop: enable VOP_FEATURE_INTERNAL_RGB on RK3066 (git-fixes).
- drm/stm: Fix an error handling path in stm_drm_platform_probe() (git-fixes).
- drm/stm: ltdc: check memory returned by devm_kzalloc() (git-fixes).
- drm/syncobj: Fix syncobj leak in drm_syncobj_eventfd_ioctl (git-fixes).
- drm/vc4: hdmi: Handle error case of pm_runtime_resume_and_get (git-fixes).
- drm: komeda: Fix an issue related to normalized zpos (stable-fixes).
- drm: omapdrm: Add missing check for alloc_ordered_workqueue (git-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Max (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for Ayn Loki Zero (stable-fixes).
- drm: panel-orientation-quirks: Add quirk for OrangePi Neo (stable-fixes).
- ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() (git-fixes).
- erofs: fix incorrect symlink detection in fast symlink (git-fixes).
- exfat: fix memory leak in exfat_load_bitmap() (git-fixes).
- fbdev: hpfb: Fix an error handling path in hpfb_dio_probe() (git-fixes).
- firmware: arm_scmi: Fix double free in OPTEE transport (git-fixes).
- firmware: tegra: bpmp: Drop unused mbox_client_to_bpmp() (git-fixes).
- firmware_loader: Block path traversal (git-fixes).
- fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF (bsc#1230602).
- fuse: fix memory leak in fuse_create_open (bsc#1230124).
- fuse: update stats for pages in dropped aux writeback list (bsc#1230125).
- fuse: use unsigned type for getxattr/listxattr size truncation (bsc#1230123).
- gpio: modepin: Enable module autoloading (git-fixes).
- gpio: rockchip: fix OF node leak in probe() (git-fixes).
- hwmon: (adc128d818) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (asus-ec-sensors) remove VRM temp X570-E GAMING (stable-fixes).
- hwmon: (k10temp) Check return value of amd_smn_read() (stable-fixes).
- hwmon: (lm95234) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (max16065) Fix overflows seen when writing limits (git-fixes).
- hwmon: (nct6775-core) Fix underflows seen when writing limit attributes (stable-fixes).
- hwmon: (ntc_thermistor) fix module autoloading (git-fixes).
- hwmon: (pmbus) Conditionally clear individual status bits for pmbus rev >= 1.2 (git-fixes).
- hwmon: (w83627ehf) Fix underflows seen when writing limit attributes (stable-fixes).
- hwrng: bcm2835 - Add missing clk_disable_unprepare in bcm2835_rng_init (git-fixes).
- hwrng: cctrng - Add missing clk_disable_unprepare in cctrng_resume (git-fixes).
- hwrng: mtk - Use devm_pm_runtime_enable (git-fixes).
- i2c: aspeed: Update the stop sw state when the bus recovery occurs (git-fixes).
- i2c: designware: fix controller is holding SCL low while ENABLE bit is disabled (git-fixes).
- i2c: isch: Add missed 'else' (git-fixes).
- i2c: qcom-geni: Use IRQF_NO_AUTOEN flag in request_irq() (git-fixes).
- i2c: xiic: Wait for TX empty to avoid missed TX NAKs (git-fixes).
- i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition (git-fixes).
- i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup (stable-fixes).
- iio: adc: ad7124: fix chip ID mismatch (git-fixes).
- iio: adc: ad7124: fix config comparison (git-fixes).
- iio: adc: ad7606: fix oversampling gpio array (git-fixes).
- iio: adc: ad7606: fix standby gpio state to match the documentation (git-fixes).
- iio: adc: ad7606: remove frstdata check for serial mode (git-fixes).
- iio: buffer-dmaengine: fix releasing dma channel on error (git-fixes).
- iio: chemical: bme680: Fix read/write ops to device by adding mutexes (git-fixes).
- iio: fix scale application in iio_convert_raw_to_processed_unlocked (git-fixes).
- iio: magnetometer: ak8975: Fix reading for ak099xx sensors (git-fixes).
- ipmi: docs: do not advertise deprecated sysfs entries (git-fixes).
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipmi:ssif: Improve detecting during probing (bsc#1228771)
- ipv6: fix possible UAF in ip6_finish_output2() (bsc#1230206)
- jfs: fix out-of-bounds in dbNextAG() and diAlloc() (git-fixes).
- kABI workaround for cros_ec stuff (git-fixes).
- kabi: dm_blk_ioctl: implement path failover for SG_IO (bsc#1183045, bsc#1216776).
- kselftests: dmabuf-heaps: Ensure the driver name is null-terminated (stable-fixes).
- kthread: Fix task state in kthread worker if being frozen (bsc#1231146).
- leds: spi-byte: Call of_node_put() on error path (stable-fixes).
- lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() (stable-fixes).
- lirc: rc_dev_get_from_fd(): fix file leak (git-fixes).
- mailbox: bcm2835: Fix timeout during suspend mode (git-fixes).
- mailbox: rockchip: fix a typo in module autoloading (git-fixes).
- media: i2c: ar0521: Use cansleep version of gpiod_set_value() (git-fixes).
- media: ov5675: Fix power on/off delay timings (git-fixes).
- media: platform: rzg2l-cru: rzg2l-csi2: Add missing MODULE_DEVICE_TABLE (git-fixes).
- media: qcom: camss: Add check for v4l2_fwnode_endpoint_parse (stable-fixes).
- media: qcom: camss: Remove use_count guard in stop_streaming (git-fixes).
- media: sun4i_csi: Implement link validate for sun4i_csi subdev (git-fixes).
- media: uapi/linux/cec.h: cec_msg_set_reply_to: zero flags (git-fixes).
- media: uvcvideo: Enforce alignment of frame and interval (stable-fixes).
- media: venus: fix use after free bug in venus_remove due to race condition (git-fixes).
- media: vicodec: allow en/decoder cmd w/o CAPTURE (git-fixes).
- media: vivid: do not set HDMI TX controls if there are no HDMI outputs (stable-fixes).
- media: vivid: fix wrong sizeimage value for mplane (stable-fixes).
- memory: mtk-smi: Use devm_clk_get_enabled() (git-fixes).
- memory: tegra186-emc: drop unused to_tegra186_emc() (git-fixes).
- minmax: reduce min/max macro expansion in atomisp driver (git-fixes).
- misc: fastrpc: Fix double free of 'buf' in error path (git-fixes).
- mmc: core: apply SD quirks earlier during probe (git-fixes).
- mmc: cqhci: Fix checking of CQHCI_HALT state (git-fixes).
- mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K (git-fixes).
- mmc: sdhci-of-aspeed: fix module autoloading (git-fixes).
- module: Fix KCOV-ignored file name (git-fixes).
- mtd: powernv: Add check devm_kasprintf() returned value (git-fixes).
- mtd: slram: insert break after errors in parsing the map (git-fixes).
- net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup (git-fixes).
- net: phy: Fix missing of_node_put() for leds (git-fixes).
- net: phy: vitesse: repair vsc73xx autonegotiation (stable-fixes).
- net: tighten bad gso csum offset check in virtio_net_hdr (git-fixes).
- net: usb: qmi_wwan: add MeiG Smart SRM825L (stable-fixes).
- nfsd: Do not leave work of closing files to a work queue (bsc#1228140).
- nilfs2: determine empty node blocks as corrupted (git-fixes).
- nilfs2: fix missing cleanup on rollforward recovery error (git-fixes).
- nilfs2: fix potential null-ptr-deref in nilfs_btree_insert() (git-fixes).
- nilfs2: fix potential oob read in nilfs_btree_check_delete() (git-fixes).
- nilfs2: fix state management in error path of log writing function (git-fixes).
- nilfs2: protect references to superblock parameters exposed in sysfs (git-fixes).
- nouveau: fix the fwsec sb verification register (git-fixes).
- nvme-multipath: avoid hang on inaccessible namespaces (bsc#1228244).
- nvme-multipath: system fails to create generic nvme device (bsc#1228244).
- nvme-pci: Add sleep quirk for Samsung 990 Evo (git-fixes).
- nvme-pci: allocate tagset on reset if necessary (git-fixes).
- nvme-tcp: fix link failure for TCP auth (git-fixes).
- nvme/pci: Add APST quirk for Lenovo N60z laptop (git-fixes).
- nvme: clear caller pointer on identify failure (git-fixes).
- nvme: fix namespace removal list (git-fixes).
- nvmet-rdma: fix possible bad dereference when freeing rsps (git-fixes).
- nvmet-tcp: do not continue for invalid icreq (git-fixes).
- nvmet-tcp: fix kernel crash if commands allocation fails (git-fixes).
- nvmet-trace: avoid dereferencing pointer too early (git-fixes).
- nvmet: Identify-Active Namespace ID List command should reject invalid nsid (git-fixes).
- ocfs2: cancel dqi_sync_work before freeing oinfo (git-fixes).
- ocfs2: fix null-ptr-deref when journal load failed (git-fixes).
- ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate (git-fixes).
- ocfs2: remove unreasonable unlock in ocfs2_read_blocks (git-fixes).
- pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv (stable-fixes).
- pcmcia: Use resource_size function on resource object (stable-fixes).
- perf annotate: Introduce global annotation_options (git-fixes).
- perf annotate: Split branch stack cycles information out of 'struct annotation_line' (git-fixes).
- perf annotate: Use global annotation_options (git-fixes).
- perf arch events: Fix duplicate RISC-V SBI firmware event name (git-fixes).
- perf intel-pt: Fix aux_watermark calculation for 64-bit size (git-fixes).
- perf intel-pt: Fix exclude_guest setting (git-fixes).
- perf machine thread: Remove exited threads by default (git-fixes).
- perf maps: Move symbol maps functions to maps.c (git-fixes).
- perf pmu: Assume sysfs events are always the same case (git-fixes).
- perf pmus: Fixes always false when compare duplicates aliases (git-fixes).
- perf record: Lazy load kernel symbols (git-fixes).
- perf report: Convert to the global annotation_options (git-fixes).
- perf report: Fix condition in sort__sym_cmp() (git-fixes).
- perf stat: Fix the hard-coded metrics calculation on the hybrid (git-fixes).
- perf test: Make test_arm_callgraph_fp.sh more robust (git-fixes).
- perf tool: fix dereferencing NULL al->maps (git-fixes).
- perf tools: Add/use PMU reverse lookup from config to name (git-fixes).
- perf tools: Use pmus to describe type from attribute (git-fixes).
- perf top: Convert to the global annotation_options (git-fixes).
- perf/core: Fix missing wakeup when waiting for context reference (git-fixes).
- perf/x86/intel/cstate: Add pkg C2 residency counter for Sierra Forest (git-fixes).
- perf/x86/intel/cstate: Fix Alderlake/Raptorlake/Meteorlake (git-fixes).
- perf/x86/intel/ds: Fix non 0 retire latency on Raptorlake (git-fixes).
- perf/x86/intel/pt: Fix a topa_entry base address calculation (git-fixes).
- perf/x86/intel/pt: Fix pt_topa_entry_for_page() address calculation (git-fixes).
- perf/x86/intel/pt: Fix topa_entry base length (git-fixes).
- perf/x86/intel/uncore: Fix the bits of the CHA extended umask for SPR (git-fixes).
- perf/x86/intel/uncore: Support HBM and CXL PMON counters (bsc#1230119).
- perf/x86/intel: Add a distinct name for Granite Rapids (git-fixes).
- perf/x86/intel: Factor out the initialization code for SPR (git fixes).
- perf/x86/intel: Limit the period on Haswell (git-fixes).
- perf/x86/intel: Use the common uarch name for the shared functions (git fixes).
- perf/x86/uncore: Apply the unit control RB tree to MMIO uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to MSR uncore units (bsc#1230119).
- perf/x86/uncore: Apply the unit control RB tree to PCI uncore units (bsc#1230119).
- perf/x86/uncore: Cleanup unused unit structure (bsc#1230119).
- perf/x86/uncore: Retrieve the unit ID from the unit control RB tree (bsc#1230119).
- perf/x86/uncore: Save the unit control address of all units (bsc#1230119).
- perf/x86/uncore: Support per PMU cpumask (bsc#1230119).
- perf/x86: Fix smp_processor_id()-in-preemptible warnings (git-fixes).
- perf/x86: Serialize set_attr_rdpmc() (git-fixes).
- perf: Fix default aux_watermark calculation (git-fixes).
- perf: Fix event leak upon exit (git-fixes).
- perf: Fix perf_aux_size() for greater-than 32-bit size (git-fixes).
- perf: Prevent passing zero nr_pages to rb_alloc_aux() (git-fixes).
- perf: script: add raw|disasm arguments to --insn-trace option (git-fixes).
- phy: zynqmp: Take the phy mutex in xlate (stable-fixes).
- pinctrl: at91: make it work with current gpiolib (stable-fixes).
- pinctrl: meteorlake: Add Arrow Lake-H/U ACPI ID (stable-fixes).
- pinctrl: single: fix missing error code in pcs_probe() (git-fixes).
- platform/chrome: cros_ec_lpc: MEC access can use an AML mutex (stable-fixes).
- platform/surface: aggregator_registry: Add Support for Surface Pro 10 (stable-fixes).
- platform/surface: aggregator_registry: Add support for Surface Laptop Go 3 (stable-fixes).
- platform/x86: dell-smbios: Fix error path in dell_smbios_init() (git-fixes).
- platform/x86: panasonic-laptop: Allocate 1 entry extra in the sinf array (git-fixes).
- platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses (git-fixes).
- platform/x86: x86-android-tablets: Make Lenovo Yoga Tab 3 X90F DMI match less strict (stable-fixes).
- power: supply: Drop use_cnt check from power_supply_property_is_writeable() (git-fixes).
- power: supply: axp20x_battery: Remove design from min and max voltage (git-fixes).
- power: supply: hwmon: Fix missing temp1_max_alarm attribute (git-fixes).
- power: supply: max17042_battery: Fix SOC threshold calc w/ no current sense (git-fixes).
- powercap/intel_rapl: Add support for AMD family 1Ah (stable-fixes).
- powerpc/qspinlock: Fix deadlock in MCS queue (bac#1230295 ltc#206656).
- pwm: xilinx: Fix u32 overflow issue in 32-bit width PWM mode (stable-fixes).
- r8152: add vendor/device ID pair for D-Link DUB-E250 (git-fixes).
- regmap: maple: work around gcc-14.1 false-positive warning (stable-fixes).
- regmap: spi: Fix potential off-by-one when calculating reserved size (stable-fixes).
- regulator: Return actual error in of_regulator_bulk_get_all() (git-fixes).
- regulator: core: Fix regulator_is_supported_voltage() kerneldoc return value (git-fixes).
- regulator: core: Fix short description for _regulator_check_status_enabled() (git-fixes).
- regulator: core: Stub devm_regulator_bulk_get_const() if !CONFIG_REGULATOR (git-fixes).
- regulator: rt5120: Convert comma to semicolon (git-fixes).
- regulator: wm831x-isink: Convert comma to semicolon (git-fixes).
- remoteproc: imx_rproc: Correct ddr alias for i.MX8M (git-fixes).
- remoteproc: imx_rproc: Initialize workqueue earlier (git-fixes).
- remoteproc: k3-r5: Fix error handling when power-up failed (git-fixes).
- reset: berlin: fix OF node leak in probe() error path (git-fixes).
- reset: k210: fix OF node leak in probe() error path (git-fixes).
- resource: fix region_intersects() vs add_memory_driver_managed() (git-fixes).
- rpm/check-for-config-changes: Exclude ARCH_USING_PATCHABLE_FUNCTION_ENTRY gcc version dependent, at least on ppc
- rtc: at91sam9: fix OF node leak in probe() error path (git-fixes).
- s390/dasd: Fix redundant /proc/dasd* entries removal (bsc#1227694).
- s390/dasd: Remove DMA alignment (LTC#208933 bsc#1230426 git-fixes).
- s390/mm: Convert gmap_make_secure to use a folio (git-fixes bsc#1230562).
- s390/mm: Convert make_page_secure to use a folio (git-fixes bsc#1230563).
- s390: allow pte_offset_map_lock() to fail (git-fixes bsc#1230564).
- scripts: kconfig: merge_config: config files: add a trailing newline (stable-fixes).
- scripts: sphinx-pre-install: remove unnecessary double check for $cur_version (git-fixes).
- scsi: ibmvfc: Add max_sectors module parameter (bsc#1216223).
- scsi: lpfc: Change diagnostic log flag during receipt of unknown ELS cmds (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix overflow build issue (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unintentional double clearing of vmid_flag (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Fix unsolicited FLOGI kref imbalance when in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Remove redundant vport assignment when building an abort request (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update PRLO handling in direct attached topology (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Update lpfc version to 14.4.0.4 (bsc#1229429 jsc#PED-9899).
- scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths (bsc#1229429 jsc#PED-9899).
- scsi: sd: Fix off-by-one error in sd_read_block_characteristics() (bsc#1223848).
- selftests: lib: remove strscpy test (git-fixes).
- selinux,smack: do not bypass permissions check in inode_setsecctx hook (stable-fixes).
- soc: fsl: cpm1: tsa: Fix tsa_write8() (git-fixes).
- soc: versatile: integrator: fix OF node leak in probe() error path (git-fixes).
- spi: atmel-quadspi: Avoid overwriting delay register settings (git-fixes).
- spi: atmel-quadspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: bcm63xx: Enable module autoloading (stable-fixes).
- spi: bcm63xx: Fix module autoloading (git-fixes).
- spi: meson-spicc: convert comma to semicolon (git-fixes).
- spi: nxp-fspi: fix the KASAN report out-of-bounds bug (git-fixes).
- spi: ppc4xx: Avoid returning 0 when failed to parse and map IRQ (git-fixes).
- spi: ppc4xx: handle irq_of_parse_and_map() errors (git-fixes).
- spi: rockchip: Resolve unbalanced runtime PM / system PM handling (git-fixes).
- spi: rpc-if: Add missing MODULE_DEVICE_TABLE (git-fixes).
- spi: spi-fsl-lpspi: Undo runtime PM changes at driver exit time (git-fixes).
- spi: spidev: Add an entry for elgin,jg10309-01 (stable-fixes).
- spi: spidev: Add missing spi_device_id for jg10309-01 (git-fixes).
- staging: iio: frequency: ad9834: Validate frequency parameter value (git-fixes).
- supported.conf: mark adiantum and xctr crypto modules as supported (bsc#1231035)
- thunderbolt: Fix XDomain rx_lanes_show and tx_lanes_show (git-fixes).
- thunderbolt: Fix calculation of consumed USB3 bandwidth on a path (git-fixes).
- thunderbolt: Fix rollback in tb_port_lane_bonding_enable() for lane 1 (git-fixes).
- thunderbolt: There are only 5 basic router registers in pre-USB4 routers (git-fixes).
- tomoyo: fallback to realpath if symlink's pathname does not exist (git-fixes).
- tools/perf: Fix the string match for '/tmp/perf-$PID.map' files in dso__load (git-fixes).
- tpm: Clean up TPM space after command failure (git-fixes).
- tracing: Avoid possible softlockup in tracing_iter_reset() (git-fixes).
- tty: rp2: Fix reset with non forgiving PCIe host bridges (git-fixes).
- uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind (git-fixes).
- usb: cdnsp: Fix incorrect usb_request status (git-fixes).
- usb: dwc2: Skip clock gating on Broadcom SoCs (git-fixes).
- usb: dwc2: drd: fix clock gating on USB role switch (git-fixes).
- usb: dwc3: Avoid waking up gadget during startxfer (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (git-fixes).
- usb: dwc3: core: Prevent USB core invalid event buffer address access (stable-fixes).
- usb: dwc3: core: update LC timer as per USB Spec V3.2 (stable-fixes).
- usb: gadget: aspeed_udc: validate endpoint index for ast udc (stable-fixes).
- usb: typec: ucsi: Fix null pointer dereference in trace (stable-fixes).
- usb: typec: ucsi: Wait 20ms before reading CCI after a reset (git-fixes).
- usb: uas: set host status byte on data completion error (stable-fixes).
- usbip: Do not submit special requests twice (stable-fixes).
- usbnet: ipheth: add CDC NCM support (git-fixes).
- usbnet: ipheth: do not stop RX on failing RX callback (git-fixes).
- usbnet: ipheth: drop RX URBs with no payload (git-fixes).
- usbnet: ipheth: fix carrier detection in modes 1 and 4 (git-fixes).
- usbnet: ipheth: fix risk of NULL pointer deallocation (git-fixes).
- usbnet: ipheth: race between ipheth_close and error handling (stable-fixes).
- usbnet: ipheth: remove extraneous rx URB length check (git-fixes).
- usbnet: ipheth: transmit URBs without trailing padding (git-fixes).
- usbnet: modern method to get random MAC (git-fixes).
- virtio-net: synchronize probe with ndo_set_features (git-fixes).
- virtio_net: Fix napi_skb_cache_put warning (git-fixes).
- virtio_net: fixing XDP for fully checksummed packets handling (git-fixes).
- watchdog: imx_sc_wdt: Do not disable WDT in suspend (git-fixes).
- wifi: ath11k: initialize 'ret' in ath11k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: fix BSS chan info request WMI command (git-fixes).
- wifi: ath12k: fix firmware crash due to invalid peer nss (stable-fixes).
- wifi: ath12k: fix invalid AMPDU factor calculation in ath12k_peer_assoc_h_he() (git-fixes).
- wifi: ath12k: fix uninitialize symbol error on ath12k_peer_assoc_h_he() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_dp_rxdma_ring_sel_config_wcn7850() (stable-fixes).
- wifi: ath12k: initialize 'ret' in ath12k_qmi_load_file_target_mem() (stable-fixes).
- wifi: ath12k: match WMI BSS chan info structure with firmware definition (git-fixes).
- wifi: ath9k: Remove error checks when creating debugfs entries (git-fixes).
- wifi: brcmfmac: introducing fwil query functions (git-fixes).
- wifi: brcmsmac: advertise MFP_CAPABLE to enable WPA3 (stable-fixes).
- wifi: cfg80211: fix UBSAN noise in cfg80211_wext_siwscan() (git-fixes).
- wifi: cfg80211: fix bug of mapping AF3x to incorrect User Priority (git-fixes).
- wifi: cfg80211: fix two more possible UBSAN-detected off-by-one errors (git-fixes).
- wifi: cfg80211: make hash table duplicates more survivable (stable-fixes).
- wifi: cfg80211: restrict operation during radar detection (stable-fixes).
- wifi: iwlwifi: clear trans->state earlier upon error (stable-fixes).
- wifi: iwlwifi: lower message level for FW buffer destination (stable-fixes).
- wifi: iwlwifi: mvm: do not wait for tx queues if firmware is dead (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_max_scan_ie_fw_cmd_room() (stable-fixes).
- wifi: iwlwifi: mvm: fix iwl_mvm_scan_fits() calculation (stable-fixes).
- wifi: iwlwifi: mvm: increase the time between ranging measurements (git-fixes).
- wifi: iwlwifi: mvm: pause TCM when the firmware is stopped (stable-fixes).
- wifi: iwlwifi: mvm: use IWL_FW_CHECK for link ID check (stable-fixes).
- wifi: mac80211: check ieee80211_bss_info_change_notify() against MLD (stable-fixes).
- wifi: mac80211: do not use rate mask for offchannel TX either (git-fixes).
- wifi: mac80211: fix the comeback long retry times (git-fixes).
- wifi: mac80211: free skb on error path in ieee80211_beacon_get_ap() (stable-fixes).
- wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop() (git-fixes).
- wifi: mt76: connac: fix checksum offload fields of connac3 RXD (git-fixes).
- wifi: mt76: mt7603: fix mixed declarations and code (git-fixes).
- wifi: mt76: mt7615: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7915: fix oops on non-dbdc mt7986 (git-fixes).
- wifi: mt76: mt7915: fix rx filter setting for bfee functionality (git-fixes).
- wifi: mt76: mt7921: Check devm_kasprintf() returned value (git-fixes).
- wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change (stable-fixes).
- wifi: mt76: mt7921: fix wrong UNII-4 freq range check for the channel usage (git-fixes).
- wifi: mt76: mt7925: fix a potential array-index-out-of-bounds issue for clc (git-fixes).
- wifi: mt76: mt7996: fix EHT beamforming capability check (git-fixes).
- wifi: mt76: mt7996: fix HE and EHT beamforming capabilities (git-fixes).
- wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he (git-fixes).
- wifi: mt76: mt7996: fix traffic delay when switching back to working channel (git-fixes).
- wifi: mt76: mt7996: fix uninitialized TLV data (git-fixes).
- wifi: mt76: mt7996: fix wmm set of station interface to 3 (git-fixes).
- wifi: mt76: mt7996: use hweight16 to get correct tx antenna (git-fixes).
- wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() (stable-fixes).
- wifi: rtw88: 8822c: Fix reported RX band width (git-fixes).
- wifi: rtw88: always wait for both firmware loading attempts (git-fixes).
- wifi: rtw88: remove CPT execution branch never used (git-fixes).
- wifi: rtw88: usb: schedule rx work after everything is set up (stable-fixes).
- wifi: rtw89: ser: avoid multiple deinit on same CAM (stable-fixes).
- wifi: rtw89: wow: prevent to send unexpected H2C during download Firmware (stable-fixes).
- wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param (git-fixes).
- x86/hyperv: fix kexec crash due to VP assist page corruption (git-fixes).
- x86/kaslr: Expose and use the end of the physical memory address space (bsc#1229443).
- x86/kexec: Add EFI config table identity mapping for kexec kernel (bsc#1220382).
- x86/mm/ident_map: Use gbpages only where full GB page should be mapped (bsc#1220382).
- x86/mm: Use lookup_address_in_pgd_attr() in show_fault_oops() (bsc#1221527).
- x86/pat: Fix W^X violation false-positives when running as Xen PV guest (bsc#1221527).
- x86/pat: Introduce lookup_address_in_pgd_attr() (bsc#1221527).
- x86/pat: Restructure _lookup_address_cpa() (bsc#1221527).
- xen/swiotlb: add alignment check for dma buffers (bsc#1229928).
- xen/swiotlb: fix allocated size (git-fixes).
- xen: add capability to remap non-RAM pages to different PFNs (bsc#1226003).
- xen: allow mapping ACPI data using a different physical address (bsc#1226003).
- xen: introduce generic helper checking for memory map conflicts (bsc#1226003).
- xen: move checks for e820 conflicts further up (bsc#1226003).
- xen: move max_pfn in xen_memory_setup() out of function scope (bsc#1226003).
- xen: tolerate ACPI NVS memory overlapping with Xen allocated memory (bsc#1226003).
- xen: use correct end address of kernel for conflict checking (bsc#1226003).
- xfs: restrict when we try to align cow fork delalloc to cowextsz hints (git-fixes).
- xhci: Set quirky xHC PCI hosts to D3 _after_ stopping and freeing them (git-fixes).
- xz: cleanup CRC32 edits from 2018 (git-fixes).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3583-1
Released: Thu Oct 10 08:56:24 2024
Summary: Recommended update for wicked
Type: recommended
Severity: moderate
References: 1229555
This update for wicked fixes the following issues:
- compat-suse: fix dummy interfaces configuration with
`INTERFACETYPE=dummy` (bsc#1229555).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3589-1
Released: Thu Oct 10 16:39:07 2024
Summary: Recommended update for cyrus-sasl
Type: recommended
Severity: moderate
References: 1230111
This update for cyrus-sasl fixes the following issues:
- Make DIGEST-MD5 work with openssl3 ( bsc#1230111 )
RC4 is legacy provided since openSSL3 and requires explicit loading, disable openssl3 depricated API warnings.
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3597-1
Released: Fri Oct 11 10:39:52 2024
Summary: Recommended update for bash
Type: recommended
Severity: moderate
References: 1227807
This update for bash fixes the following issues:
- Load completion file eveh if a brace expansion is in the
command line included (bsc#1227807).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3602-1
Released: Fri Oct 11 13:02:10 2024
Summary: Recommended update for grub2
Type: recommended
Severity: moderate
References: 1224465,1230263,1230840
This update for grub2 fixes the following issues:
- Fix OOM (out of memory) error in loading loopback file (bsc#1230840).
- Fix UEFI PXE boot failure on tagged VLAN network (bsc#1230263).
- Fix grub screen is filled with artifects from earlier post menu (bsc#1224465).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3609-1
Released: Mon Oct 14 11:39:13 2024
Summary: Recommended update for SLES-release
Type: recommended
Severity: moderate
References: 1227100,1230135
This update for SLES-release fixes the following issues:
- update codestream end date (bsc#1227100)
- added weakremover(libsemanage1) (bsc#1230135)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3616-1
Released: Mon Oct 14 13:03:56 2024
Summary: Recommended update for libnettle
Type: recommended
Severity: moderate
References: 1221714,1226724
This update for libnettle fixes the following issue:
- FIPS integrity checksums were not correct on s390x (bsc#1221714)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3621-1
Released: Mon Oct 14 19:00:38 2024
Summary: Recommended update for open-iscsi
Type: recommended
Severity: moderate
References: 1228084
This update for open-iscsi fixes the following issues:
- Update to version 2.1.10.suse, code bugfixing and behavior :
* Turn off iSCSI NOP-Outs, by default.
* Change a discovery function to (void) return type.
* grammar nitpicks and improving comments.
* Make it visible when memory allocation failure.
* Better handle multiple iscsiadm commands and allow hostnames in node-mode commands.
* Modify workqueue priority set.
* iscsid: Rescan devices on relogin.
* Add missing characters in README.
* Fix: add missing underline in usr/iscsid_req.h
* Fix firmware targets startup to always be 'onboot' (bsc#1228084).
* Fix gcc issues.
* Fix read specific sysfs value 'off' of session attribute.
* Fix bug where abort_tmo read failures were ignored.
* Fix memory leak in iscsi_check_session_use_count.
* Fix authmethod check by printing a warning message when CHAP used and authmethod=None.
- Updated to latest upstream: two small changes, with no known
functional changes:
* Incorrect documentation for `iscsiadm -m session` print level
* Stop using deprecated functions: inet_aton(), inet_ntoa()
- Stopped using pre-prepared tarballs for the build, instead
now using a service file to get latest SUSE sources directly.
which were created by a shell script, and added a service
generated file with the form:
* open-iscsi-2.1.9.suse+TAG_OFFSET.tar.xz
where:
* TAG_OFFSET is of the form 'COMMIT_COUNT.HASH'
* COMMIT_COUNT is the count of commits since 2.1.9-suse
(in this case), and HASH is the git commit hash being used.
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3659-1
Released: Wed Oct 16 15:12:47 2024
Summary: Recommended update for gcc14
Type: recommended
Severity: moderate
References: 1188441,1210959,1214915,1219031,1220724,1221601
This update for gcc14 fixes the following issues:
This update ships the GNU Compiler Collection GCC 14.2. (jsc#PED-10474)
The compiler runtime libraries are provided for all SUSE Linux Enterprise 15
versions and replace the same named GCC 13 ones.
The new compilers for C, C++, and Fortran are provided for SUSE Linux
Enterprise 15 SP5 and SP6, and provided in the 'Development Tools' module.
The Go, D, Ada and Modula 2 language compiler parts are available
unsupported via the PackageHub repositories.
To use gcc14 compilers use:
- install 'gcc14' or 'gcc14-c++' or one of the other 'gcc14-COMPILER' frontend packages.
- override your Makefile to use CC=gcc14, CXX=g++14 and similar overrides for the other languages.
For a full changelog with all new GCC14 features, check out
https://gcc.gnu.org/gcc-14/changes.html
- Add libquadmath0-devel-gcc14 sub-package to allow installing
quadmath.h and SO link without installing the fortran frontend
- Avoid combine spending too much compile-time and memory doing nothing on s390x. [bsc#1188441]
- Remove timezone Recommends from the libstdc++6 package. [bsc#1221601]
- Revert libgccjit dependency change. [bsc#1220724]
- Fix libgccjit-devel dependency, a newer shared library is OK.
- Fix libgccjit dependency, the corresponding compiler isn't required.
- Add cross-X-newlib-devel requires to newlib cross compilers.
[bsc#1219031]
- Re-enable AutoReqProv for cross packages but filter files processed
via __requires_exclude_from and __provides_exclude_from.
[bsc#1219031]
- Package m2rte.so plugin in the gcc14-m2 sub-package rather than
in gcc13-devel. [bsc#1210959]
- Require libstdc++6-devel-gcc14 from gcc14-m2 as m2 programs
are linked against libstdc++6.
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3681-1
Released: Wed Oct 16 19:34:35 2024
Summary: Recommended update for libzypp
Type: recommended
Severity: important
References: 1230912,1231043
This update for libzypp fixes the following issues:
- Send unescaped colons in header values. According to the STOMP protocol, it
would be correct to escape colon here but the practice broke plugin receivers
that didn't expect this. The incompatiblity affected customers who were
running spacewalk-repo-sync and experienced issues when accessing the cloud
URL. [bsc#1231043]
- Fix hang in curl code with no network connection. [bsc#1230912]
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3712-1
Released: Thu Oct 17 15:00:54 2024
Summary: Recommended update for samba
Type: recommended
Severity: moderate
References: 1229684
This update for samba fixes the following issues:
- Incorrect FSCTL_QUERY_ALLOCATED_RANGES response when truncated
(bsc#1229684).
- Version update
* Invalid client warning about command line passwords.
* program version string is truncated in manpages.
* --version-* options reject tilde characters.
* We have added new options --vendor-name and --vendor-patch-
revision arguments to ./configure to allow distributions and
packagers to put their name in the Samba version string so that
when debugging Samba the source of the binary is obvious.
* Unable to log on to a Windows computer when user account
need to change their own password.
* Fix clock skew error message and memory cache clock skew
recovery.
* Dynamic DNS updates with the internal DNS are not working.
* 'client use kerberos' and --use-kerberos is ignored for the machine
account.
* Regression DFS not working with widelinks=true.
* ntlm_auth make logs more consistent with length check.
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3726-1
Released: Fri Oct 18 11:56:40 2024
Summary: Recommended update for glibc
Type: recommended
Severity: moderate
References: 1231051
This update for glibc fixes the following issue:
- Apply libc_nonshared.a workaround on s390x and ppc64le architectures (bsc#1231051).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3846-1
Released: Thu Oct 31 11:07:10 2024
Summary: Recommended update for gnutls
Type: recommended
Severity: moderate
References: 1226724,1226731,1226733,1227642,1227669,1227670,1227671,1230166
This update for gnutls fixes the following issues:
- FIPS: Do not allow curve P-192 for signature or keypair verification [bsc#1227669]
- FIPS: Allow to perform the integrity check with the hmac provided by each library [bsc#1226724]
- FIPS: Mark gnutls_hash_fast operations as approved in SLI. [bsc#1230166]
- FIPS: Run pairwise consistency test only in FIPS mode. [bsc#1226733]
- FIPS: Use full hash+sign operations, not low level primitives in PCT test. [bsc#1226733]
- FIPS: Mark SHA1 as not allowed for signature verification in both RSA and ECDSA sigVer. [bsc#1227642]
- FIPS: Allow RSA signature verification with min of 2048 bit modulus. [bsc#1227670]
- FIPS: Remove not needed DSA in selfchecks in FIPS mode. [bsc#1227671, bsc#1226731]
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3865-1
Released: Fri Nov 1 16:10:37 2024
Summary: Recommended update for gcc14
Type: recommended
Severity: moderate
References: 1231833
This update for gcc14 fixes the following issues:
- Fixed parsing timezone tzdata 2024b [gcc#116657 bsc#1231833]
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3868-1
Released: Fri Nov 1 16:15:26 2024
Summary: Recommended update for suse-build-key
Type: recommended
Severity: moderate
References: 1231829
This update for suse-build-key fixes the following issues:
- Also include the GPG key from the current build project to allow Staging testing without production keys,
but only in staging. (bsc#1231829)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3879-1
Released: Fri Nov 1 17:04:25 2024
Summary: Security update for python3
Type: security
Severity: moderate
References: 1230906,1232241,CVE-2024-9287
This update for python3 fixes the following issues:
Security fixes:
- CVE-2024-9287: properly quote path names provided when creating a virtual environment (bsc#1232241)
Other fixes:
- Drop .pyc files from docdir for reproducible builds (bsc#1230906)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3887-1
Released: Mon Nov 4 09:22:45 2024
Summary: Recommended update for lvm2
Type: recommended
Severity: moderate
References: 1231796
This update for lvm2 fixes the following issue:
- LVM2 mirror attached to another node couldn't be converted into linear LV (bsc#1231796).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3888-1
Released: Mon Nov 4 09:59:56 2024
Summary: Recommended update for wget
Type: recommended
Severity: moderate
References: 1204720,1231661
This update for wget fixes the following issues:
- wget incorrectly truncates long filenames (bsc#1231661).
- wget dies writing too long filenames (bsc#1204720).
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3896-1
Released: Mon Nov 4 12:08:29 2024
Summary: Recommended update for shadow
Type: recommended
Severity: moderate
References: 1230972
This update for shadow fixes the following issues:
- Add useradd warnings when requested UID is outside the default range (bsc#1230972)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3902-1
Released: Mon Nov 4 13:15:51 2024
Summary: Recommended update for shim
Type: recommended
Severity: moderate
References: 1210382,1230316
This update for shim fixes the following issues:
- Update shim-install to apply the missing fix for openSUSE Leap (bsc#1210382)
- Update shim-install to use the 'removable' way for SL-Micro (bsc#1230316)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3905-1
Released: Mon Nov 4 13:39:01 2024
Summary: Security update for openssl-1_1
Type: security
Severity: moderate
References: 1220262,1224258,1224260,1224264,1224265,1224266,1224267,1224268,1224269,1224270,1224271,1224272,1224273,1224275,1228618,1228619,1228623,CVE-2023-50782
This update for openssl-1_1 fixes the following issues:
Security fixes:
- CVE-2023-50782: Implicit rejection in PKCS#1 v1.5 (bsc#1220262)
Other fixes:
- FIPS: AES GCM external IV implementation (bsc#1228618)
- FIPS: Mark PBKDF2 and HKDF HMAC input keys with size >= 112 bits as approved in the SLI. (bsc#1228623)
- FIPS: Enforce KDF in FIPS style (bsc#1224270)
- FIPS: Mark HKDF and TLSv1.3 KDF as approved in the SLI (bsc#1228619)
- FIPS: The X9.31 scheme is not approved for RSA signature operations in FIPS 186-5. (bsc#1224269)
- FIPS: Differentiate the PSS length requirements (bsc#1224275)
- FIPS: Mark sigGen and sigVer primitives as non-approved (bsc#1224272)
- FIPS: Disable PKCSv1.5 and shake in FIPS mode (bsc#1224271)
- FIPS: Mark SHA1 as non-approved in the SLI (bsc#1224266)
- FIPS: DH FIPS selftest and safe prime group (bsc#1224264)
- FIPS: Remove not needed FIPS DRBG files (bsc#1224268)
- FIPS: Add Pair-wise Consistency Test when generating DH key (bsc#1224265)
- FIPS: Disallow non-approved KDF types (bsc#1224267)
- FIPS: Disallow RSA sigVer with 1024 and ECDSA sigVer/keyVer P-192 (bsc#1224273)
- FIPS: DRBG component chaining (bsc#1224258)
- FIPS: Align CRNGT_BUFSIZ with Jitter RNG output size (bsc#1224260)
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3925-1
Released: Wed Nov 6 11:14:28 2024
Summary: Security update for curl
Type: security
Severity: moderate
References: 1232528,CVE-2024-9681
This update for curl fixes the following issues:
- CVE-2024-9681: Fixed HSTS subdomain overwrites parent cache entry (bsc#1232528)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3935-1
Released: Thu Nov 7 06:12:39 2024
Summary: Recommended update for wicked
Type: recommended
Severity: important
References: 1229555,1229745,1230911,1231060
This update for wicked fixes the following issues:
- Update to version 0.6.77
- compat-suse: use iftype in sysctl handling (bsc#1230911)
- Always generate the ipv4/ipv6 <enabled>true|false</enabled> node
- Inherit all, default and interface sysctl settings also for loopback,
except for use_tempaddr and accept_dad
- Consider only interface specific accept_redirects sysctl settings
- Adopt ifsysctl(5) manual page with wicked specific behavior
- route: fix family and destination processing (bsc#1231060)
- man: improve wicked-config(5) file description
- dhcp4: add ignore-rfc3927-1-6 wicked-config(5) option
- team: set arp link watcher interval default to 1s
- systemd: use `BindsTo=dbus.service` in favor of `Requisite=` (bsc#1229745)
- compat-suse: fix use of deprecated `INTERFACETYPE=dummy` (bsc#1229555)
- arp: don't set target broadcast hardware address
- dbus: don't memcpy empty/NULL array value
- ethtool: fix leak and free pause data in ethtool_free
-----------------------------------------------------------------
Advisory ID: SUSE-SU-2024:3943-1
Released: Thu Nov 7 11:12:00 2024
Summary: Security update for openssl-3
Type: security
Severity: moderate
References: 1220262,CVE-2023-50782
This update for openssl-3 fixes the following issues:
- CVE-2023-50782: Implicit rejection in PKCS#1 v1.5 (bsc#1220262)
-----------------------------------------------------------------
Advisory ID: SUSE-RU-2024:3952-1
Released: Fri Nov 8 10:26:53 2024
Summary: Recommended update for libproxy
Type: recommended
Severity: moderate
References: 1228999
This update for libproxy fixes the following issue:
- (fix) Remove white space in key value for libproxy (bsc#1228999).
The following package changes have been done:
- bash-sh-4.4-150400.27.3.2 updated
- bash-4.4-150400.27.3.2 updated
- glibc-locale-base-2.38-150600.14.14.2 updated
- glibc-locale-2.38-150600.14.14.2 updated
- glibc-2.38-150600.14.14.2 updated
- grub2-i386-pc-2.12-150600.8.9.2 updated
- grub2-x86_64-efi-2.12-150600.8.9.2 updated
- grub2-2.12-150600.8.9.2 updated
- kernel-default-6.4.0-150600.23.25.1 updated
- libcurl4-8.6.0-150600.4.12.1 updated
- libdevmapper1_03-2.03.22_1.02.196-150600.3.3.2 updated
- libgcc_s1-14.2.0+git10526-150000.1.6.1 updated
- libgnutls30-3.8.3-150600.4.3.1 updated
- libhogweed6-3.9.1-150600.3.2.1 updated
- libnettle8-3.9.1-150600.3.2.1 updated
- libopeniscsiusr0-0.2.0-150600.51.3.2 updated
- libopenssl1_1-1.1.1w-150600.5.9.1 updated
- libopenssl3-3.1.4-150600.5.21.1 updated
- libproxy1-0.5.3-150600.4.3.2 updated
- libpxbackend-1_0-0.5.3-150600.4.3.2 updated
- libpython3_6m1_0-3.6.15-150300.10.75.1 updated
- libreadline7-7.0-150400.27.3.2 updated
- libsasl2-3-2.1.28-150600.7.3.1 updated
- libstdc++6-14.2.0+git10526-150000.1.6.1 updated
- libzypp-17.35.12-150600.3.27.1 updated
- login_defs-4.8.1-150600.17.9.1 updated
- open-iscsi-2.1.10-150600.51.3.2 updated
- openssl-3-3.1.4-150600.5.21.1 updated
- python3-base-3.6.15-150300.10.75.1 updated
- python3-3.6.15-150300.10.75.1 updated
- samba-client-libs-4.19.8+git.368.51d32c069f-150600.3.6.11 updated
- shadow-4.8.1-150600.17.9.1 updated
- shim-15.8-150300.4.23.1 updated
- sles-release-15.6-150600.64.3.1 updated
- suse-build-key-12.0-150000.8.55.1 updated
- wget-1.20.3-150600.19.6.2 updated
- wicked-service-0.6.77-150600.11.15.1 updated
- wicked-0.6.77-150600.11.15.1 updated
More information about the sle-container-updates
mailing list